Show filters
117 Total Results
Displaying 31-40 of 117
Sort by:
Attacker Value
Unknown

CVE-2019-12351

Disclosure Date: June 02, 2022 (last updated February 23, 2025)
An issue was discovered in zzcms 2019. SQL Injection exists in dl/dl_print.php via an id parameter value with a trailing comma.
Attack Vector: NetworkPrivileges: NoneUser Interaction: None
0
0
Attacker Value
Unknown

CVE-2019-12350

Disclosure Date: June 02, 2022 (last updated February 23, 2025)
An issue was discovered in zzcms 2019. SQL Injection exists in dl/dl_download.php via an id parameter value with a trailing comma.
Attack Vector: NetworkPrivileges: NoneUser Interaction: None
0
0
Attacker Value
Unknown

CVE-2019-12349

Disclosure Date: June 02, 2022 (last updated February 23, 2025)
An issue was discovered in zzcms 2019. SQL Injection exists in /admin/dl_sendsms.php via the id parameter.
Attack Vector: NetworkPrivileges: NoneUser Interaction: None
0
0
Attacker Value
Unknown

CVE-2022-28527

Disclosure Date: April 26, 2022 (last updated February 23, 2025)
dhcms v20170919 was discovered to contain an arbitrary folder deletion vulnerability via /admin.php?r=admin/AdminBackup/del.
Attack Vector: NetworkPrivileges: LowUser Interaction: None
0
0
Attacker Value
Unknown

CVE-2022-28525

Disclosure Date: April 26, 2022 (last updated February 23, 2025)
ED01-CMS v20180505 was discovered to contain an arbitrary file upload vulnerability via /admin/users.php?source=edit_user&id=1.
Attack Vector: NetworkPrivileges: LowUser Interaction: None
0
0
Attacker Value
Unknown

CVE-2022-28524

Disclosure Date: April 26, 2022 (last updated February 23, 2025)
ED01-CMS v20180505 was discovered to contain a SQL injection vulnerability via the component post.php.
Attack Vector: NetworkPrivileges: NoneUser Interaction: None
0
0
Attacker Value
Unknown

CVE-2022-28522

Disclosure Date: April 26, 2022 (last updated February 23, 2025)
ZCMS v20170206 was discovered to contain a stored cross-site scripting (XSS) vulnerability via index.php?m=home&c=message&a=add.
Attack Vector: NetworkPrivileges: LowUser Interaction: Required
0
0
Attacker Value
Unknown

CVE-2022-28521

Disclosure Date: April 26, 2022 (last updated October 07, 2023)
ZCMS v20170206 was discovered to contain a file inclusion vulnerability via index.php?m=home&c=home&a=sp_set_config.
Attack Vector: NetworkPrivileges: NoneUser Interaction: None
0
0
Attacker Value
Unknown

CVE-2021-46437

Disclosure Date: April 08, 2022 (last updated February 23, 2025)
An issue was discovered in ZZCMS 2021. There is a cross-site scripting (XSS) vulnerability in ad_manage.php.
Attack Vector: NetworkPrivileges: HighUser Interaction: Required
0
0
Attacker Value
Unknown

CVE-2021-46436

Disclosure Date: April 08, 2022 (last updated February 23, 2025)
An issue was discovered in ZZCMS 2021. There is a SQL injection vulnerability in ad_manage.php.
Attack Vector: NetworkPrivileges: HighUser Interaction: None
0
0
View More Topics  < Previous  Next >